From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 49B7613888F for ; Sun, 11 Oct 2015 12:49:16 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id AEA2721C013; Sun, 11 Oct 2015 12:49:06 +0000 (UTC) Received: from mail-wi0-f176.google.com (mail-wi0-f176.google.com [209.85.212.176]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 84CBC21C005 for ; Sun, 11 Oct 2015 12:49:05 +0000 (UTC) Received: by wiclk2 with SMTP id lk2so121341807wic.0 for ; Sun, 11 Oct 2015 05:49:04 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-type:content-transfer-encoding; bh=gZTtlnz4+oe8klMQiOQC1isf/CW6nGIW+oRlGh1h6Cg=; b=rJEqBG2LMZx0t6RBILnzKJr2yyVnZnepj+ixWRYl63Ip80hiCOG5s1XioJIh3HG4Wb rwd2Npnqj+RNHbQ98DKKAmjrbQGxm5avbfShO/wFlkpgzny0e76hfhLzy2Gt3wEFiR/p y1vKU8Bk5Q/zid0XWFHyTINOyW3z7O9yc13kzWbQBNY6NOVhG3oFQMw3RZ4z+EfhhOH1 lpELqiO4Asu96rjvazLAMhg6PqarlhygwoEP1fE+eD0snr2Dw/SXtHAyUwLiSBh+IccK IgY37J7kHInwWCOy/2/skb1d9l2iDk4X7dE1e23bhfKQJpTRfkNuEpFZidS2tRpoGauX kaXw== X-Received: by 10.194.216.228 with SMTP id ot4mr20579701wjc.156.1444567744336; Sun, 11 Oct 2015 05:49:04 -0700 (PDT) Received: from [172.20.0.41] ([105.210.54.110]) by smtp.googlemail.com with ESMTPSA id pk7sm13710363wjb.2.2015.10.11.05.49.03 for (version=TLSv1/SSLv3 cipher=OTHER); Sun, 11 Oct 2015 05:49:03 -0700 (PDT) Subject: Re: [gentoo-user] DNS server packages To: gentoo-user@lists.gentoo.org References: <1844843.IpbL7Lrp59@andromeda> <561A2115.6050707@gmail.com> <1545632.lvV12XePKI@andromeda> From: Alan McKinnon X-Enigmail-Draft-Status: N1110 Message-ID: <561A5A97.2000804@gmail.com> Date: Sun, 11 Oct 2015 14:48:23 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 In-Reply-To: <1545632.lvV12XePKI@andromeda> Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 7bit X-Archives-Salt: 404ecda4-42c8-4541-9058-73110adc49c6 X-Archives-Hash: 207d18898ff82291e13b544eda80662d On 11/10/2015 11:33, J. Roeleveld wrote: > On Sunday, October 11, 2015 10:43:01 AM Alan McKinnon wrote: >> On 11/10/2015 10:18, J. Roeleveld wrote: >>> On Sunday, October 11, 2015 09:35:39 AM Alan McKinnon wrote: >>>> On 11/10/2015 04:13, James wrote: >>>>> Howdy, >>>>> >>>>> So I now have (5) statics and a fiber feed, with lots of room to grow. >>>>> >>>>> I need to setup DNS primary/secondary systems on gentoo. So right now >>>>> I'm >>>>> looking for a suggested list of packages to install with Bind, iptables >>>>> and >>>>> DNSSEC-tools as these (2) gentoo dns servers will only run the minimum >>>>> packages to operate securely? >>>> >>>> auth or cache? >>>> >>>> First of all, bind is a pain to use. Reason: it's actually a reference >>>> implementation that as usual got forced into production use. It's slower >>>> than it could be because it deals with every possible corner case per >>>> RFC. >>>> >>>> As an auth server (few queries) it's OK >>>> As a cache (many queries), there are better servers out there. I prefer >>>> unbound. >>> >>> As it is related to this thread, which server would people recommend when >>> the DNS records are to be found in a database? >>> Reason I am asking: >>> I want to set up a lab environment with VMs coming and going. >>> These all need to have hostname/mac/ip stored and configured correctly. >> >> I don't understand. > > > >> Perhaps detail more what you are trying to accomplish? > > What I do currently: > > Edit Bind zone-files and enter IP / Hostname combinations > Edit DHCP config file and enter MAC / IP / Hostname combinations > (And hope these actually match and not contain typos) > > What I want to do: > > In a database I have a table with the following fields: > MAC, IP, Hostname, domain > xx:xx:xx:xx:xx , 1.2.3.4 , vmobi1114node1 , vm1.lab.example.com > > I want the DNS server to use the IP, Hostname and domain fields for the > resolving. > I want the DHCP server to use all the fields for the DHCP assignments. OK, that makes sense. You'd think all decent DNS and DHCP servers out there would support any old arb db backend (very useful, no?) but it seems not. I've gotten used to independently vi'ing two files and HUP/reload two daemons over the years :-) Bind can use a mysql backend, so can most auth servers. The only dhcp server easily available on gentoo seems to be dhcp from ISC which does not support mysql. But both support ldap, maybe you can use that? There's lots of ldap frontends so getting your info into it should be easy enough. You could also look into kea (https://www.isc.org/kea/), a better dhcp server from ISC. The blurb says it supports SQL backends. -- Alan McKinnon alan.mckinnon@gmail.com